all InfoSec news
Microsoft Azure Firewall Bypass Vulnerability
June 3, 2024, 12:18 p.m. | Noam Dahan
Tenable Research Advisories www.tenable.com
Tenable Research discovered a vulnerability in Azure (customer action required). The vulnerability allows a malicious attacker to bypass firewall rules based on Azure Service Tags by forging requests from trusted services. A threat actor could exploit Service Tags that have been allowed through a user's firewall if there are no additional validation controls.
The affected services are:
- Azure Application Insights
- Azure DevOps
- Azure Machine Learning
- Azure Logic Apps
- Azure Container Registry
- Azure Load Testing
- Azure …
azure bypass bypass vulnerability firewall firewall bypass microsoft microsoft azure vulnerability
More from www.tenable.com / Tenable Research Advisories
Fortra FileCatalyst Workflow Unauthenticated SQLi
1 day, 5 hours ago |
www.tenable.com
NextChat Server-Side Request Forgery / Cross-Site Scripting
1 day, 13 hours ago |
www.tenable.com
SSRF Security Feature Bypass in Azure AI and ML Studios
1 week, 2 days ago |
www.tenable.com
Microsoft Azure Firewall Bypass Vulnerability
3 weeks, 2 days ago |
www.tenable.com
Jobs in InfoSec / Cybersecurity
Information Technology Specialist I: Windows Engineer
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
Information Technology Specialist I, LACERA: Information Security Engineer
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Account Executive - Secureworks Direct Sales - US Remote Philadelphia
@ Dell Technologies | Remote - Pennsylvania, United States
SATCOM Technician - Shariki, Japan - Secret Clearance (Onsite)
@ RTX | RVA99: RTN Remote, Virginia
Senior Test Engineer
@ Commonwealth Bank | Bengaluru - Manyata Tech Park Road
Lead Developer - Pipeline & Algorithms
@ Arctic Wolf | Waterloo